Kaspersky Anti-Virus < 6.0.2.614 Multiple Vulnerabilities

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that is prone to
various issues.

Description :

The version of the Kaspersky antivirus product installed on the remote
host may be affected by buffer overflow, privilege escalation, and
information disclosure vulnerabilities, depending on the actual
product installed.

See also :

http://www.nessus.org/u?8d1fc561
http://www.nessus.org/u?09f76718
http://seclists.org/bugtraq/2007/Apr/104
http://seclists.org/bugtraq/2007/Apr/105
http://www.zerodayinitiative.com/advisories/ZDI-07-013.html
http://www.zerodayinitiative.com/advisories/ZDI-07-014.html
http://www.nessus.org/u?b44c0d6c
http://www.nessus.org/u?ce1089e5

Solution :

If using Kaspersky Anti-Virus / Kaspersky Internet Security, upgrade
to build 6.0.2.614 or later.

If using Kaspersky Anti-Virus for Windows File Servers / Kaspersky
Anti-Virus for Windows Workstation, upgrade to version 6.0 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 25021 (kaspersky_av6_mult_vulns.nasl)

Bugtraq ID: 23325
23326
23345
23346

CVE ID: CVE-2007-0445
CVE-2007-1112
CVE-2007-1879
CVE-2007-1880
CVE-2007-1881

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now